--- /dev/null
+---
+nodo::role: 'virtual'
# Backup
#
nodo::subsystem::backup::encryptkey: "FIXME"
-nodo::subsystem::backup::password: 'FIXME'
+nodo::subsystem::backup::password: 'FIXME using hiera-eyaml'
+++ /dev/null
-#
-# Menu appearance
-#
-set menu_color_normal=white/blue
-set menu_color_highlight=yellow/red
-
-#
-# Example: imagens stored in the USB stick: just put your images under custom/debian/images.
-#
-menuentry 'Example: Darkstar' {
- set volume=/dev/sda5
- set version=3.16.0-4-amd64
- set target=sda5_crypt
- set rootfs=darkstar--vg-root
- set distro=debian
- bootimg ${volume} ${version} ${source} ${target} ${distro}
-}
-
-#
-# Example: Full Disk Encryption: images are loaded from encrypted partition.
-#
-menuentry 'Example: Darkstar FDE' {
- set volume=darkstar
- set version=3.16.0-4-amd64
- bootfde ${volume} ${version}
-}
+++ /dev/null
-#
-# Bootless: evil-maid mitigator.
-#
-
-#
-# Load environment
-#
-if [ -s $prefix/grubenv ]; then
- load_env
-fi
-
-#
-# Basic config
-#
-set default="0"
-set timeout=5
-
-#
-# Menu appearance
-#
-set menu_color_normal=white/blue
-set menu_color_highlight=yellow/red
-
-#
-# Handles boot from fully encrypted /boot volumes.
-# Usage: bootfde <volume> <kernel-version> [source] [target]
-#
-function bootfde {
- insmod luks
- insmod lvm
-
- set volume=${1}
-
- if [ "${2}" ]; then
- set version=${2}
- else
- set version=3.16.0-4-amd64
- fi
-
- if [ "${3}" ]; then
- set source=${3}
- else
- set source=/dev/mapper/${1}
- fi
-
- if [ "${4}" ]; then
- set target=${4}
- else
- set target=root
- fi
-
- cryptomount lvm/${volume}
- set root=(crypto0)
- echo "Loading ${volume}..."
- linux /boot/vmlinuz-${version} root=/dev/mapper/${target} cryptopts=target=${target},source=${source} ro quiet
- echo 'Loading initial ramdisk ...'
- initrd /boot/initrd.img-${version}
-}
-
-#
-# Handles boot from images stored in the USB stick.
-# Usage: bootfde <volume> <kernel-version> [target] [rootfs] [distro]
-#
-function bootimg {
- set volume=${1}
-
- if [ "${2}" ]; then
- set version=${2}
- else
- set version=3.16.0-4-amd64
- fi
-
- if [ "${3}" ]; then
- set target=${3}
- else
- set target=root
- fi
-
- if [ "${4}" ]; then
- set rootfs=${4}
- else
- set rootfs=${target}
- fi
-
- if [ "${5}" ]; then
- set distro=${5}
- else
- set distro=debian
- fi
-
- echo "Loading ${1}..."
- linux /boot/custom/${distro}/vmlinuz-${version} root=/dev/mapper/${rootfs} cryptopts=target=${target},source=${volume} ro quiet apparmor=1 security=apparmor
- echo 'Loading initial ramdisk ...'
- initrd /boot/custom/${distro}/initrd.img-${version}
-}
-
-#
-# Default menu entry
-#
-menuentry "Memtest86+" {
- linux16 /boot/default/memtest/memtest86+.bin
-}
-
-#
-# Custom menu entries
-#
-if [ -e "/boot/custom/custom.cfg" ]; then
- menuentry "Custom configurations" {
- configfile /boot/custom/custom.cfg
- }
-fi
+++ /dev/null
-node 'nodename.example.org' {
- include nodo
-}
exit 1
fi
-# Create node
-#if [ -e "$NODES" ]; then
-# #echo "import \"nodes/$NODE.pp\"" >> $NODES
-#fi
-
# Set YAML template
-if [ -e "$HYDRA_FOLDER/config/templates/node/nodo.example.org.yaml" ]; then
- YAML="$HYDRA_FOLDER/config/templates/node/nodo.example.org.yaml"
+if [ -e "$HYDRA_FOLDER/config/puppet/nodo.example.org.yaml" ]; then
+ YAML="$HYDRA_FOLDER/config/puppet/nodo.example.org.yaml"
else
- YAML="$APP_BASE/share/config/templates/node/nodo.example.org.yaml"
+ YAML="$APP_BASE/share/config/puppet/nodo.example.org.yaml"
fi
-# Set node template
-#if [ -e "$HYDRA_FOLDER/config/templates/node/nodo.pp" ]; then
-# PP="$HYDRA_FOLDER/config/templates/node/nodo.example.org.pp"
-#else
-# PP="$APP_BASE/share/config/templates/node/nodo.example.org.pp"
-#fi
-
# Copy YAML template
mkdir -p $HYDRA_FOLDER/puppet/config/node
cp $YAML $HYDRA_FOLDER/puppet/config/node/$NODE.yaml
+# Set secret YAML template
+if [ -e "$HYDRA_FOLDER/config/puppet/secrets/nodo.example.org.yaml" ]; then
+ YAML="$HYDRA_FOLDER/config/puppet/secrets/nodo.example.org.yaml"
+else
+ YAML="$APP_BASE/share/config/puppet/secrets/nodo.example.org.yaml"
+fi
+
# Setup secret YAML template
mkdir -p $HYDRA_FOLDER/puppet/config/secrets/node
-echo "---" > $HYDRA_FOLDER/puppet/config/secrets/node/$NODE.yaml
-
-# Copy node template
-#mkdir -p $HYDRA_FOLDER/puppet/manifests/nodes
-#cp $PP $HYDRA_FOLDER/puppet/manifests/nodes/$NODE.pp
-
-# Edit the template
-#sed -i -e "s/nodename.example.org/$NODE/g" $HYDRA_FOLDER/puppet/manifests/nodes/$NODE.pp
+cp $YAML $HYDRA_FOLDER/puppet/config/secrets/node/$NODE.yaml
# Add to git
(
projects / hydra.git / commitdiff